RSS Alerts

Share

More services

Related Links

Related Stories

  • Suspected Mariposa botnet author arrested
    A 23-year-old Slovenian man – thought to be the author and creator of the infamous Mariposa (butterfly) botnet – has been arrested by Slovenian police, working in concert with their colleagues from Spain and a team from the FBI.
  • Taking Down a Botnet
    This past February, Microsoft, along with industry partners and academic researchers, spearheaded an effort to take the Waledec botnet offline. Drew Amorosi provides a detailed account of just how the cooperative endeavor was able to halt – at least temporarily – the notorious spam serving network.
  • Trusteer detects rapid spread of new polymorphic Zeus trojan
    Trusteer says it has detected a completely new version of the Zeus password stealing trojan that has been designed to steal online banking credentials.
  • New Zeus attack uses Adobe design flaw
    The Zeus botnet continues to spread graciously, according to new data collected by Websense – and other researchers say that it is exploring a recently discovered design flaw in the Adobe PDF file format.
  • Provider takedown guts Zeus infrastructure
    Yet another botnet suffered severe losses to its functionality this week, in what appears to be a growing campaign among the white hat community to take down these virulent networks. Troyak-AS, which was the upstream provider for the six worst Zeus hosting ISPs, has been taken offline.

Top 5 Stories

News

New Zeus campaign uses FedEx notice scam

01 September 2010

Security firm McAfee has alerted the online community to a new Zeus botnet attack using bogus FedEx notification emails.

McAfee malware research scientist Pedro Bueno made note of the new Zeus push yesterday in a McAfee Labs blog posting. Bueno said the new spam campaign is linked to the Asprox botnet, which is spreading emails that use FedEx branding.

The researcher said these fake FedEx emails contain attachments that are really executables, with file names starting in FedExDoc or FedExInvoice.

“Those attachments are recognized as the Bredolab Trojan”, Bueno wrote, “which will download the Zeus component”.

Zeus, as Infosecurtiy notes, is the notorious trojan delivered via email files with .exe attachments, and is designed to make off with personal and banking information.

He also added that several large US banks are among targets of the fake FedEx emails – including Citibank, Comerica, USBank and Wells Fargo – in addition to several other banks in Europe, the Middle East, Asia, and South America.

 

This article is featured in:
Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012